<------------------- header data start ------------------- >
#############################################################
Flickr.com XSS Vulnerability
#############################################################

# Author : SOLVER ~ Bug Researchers

# Date : 03.08.2011

# Name : Flickr Photo Sharing

# Bug Type : XSS (Cross Site Scripting)

# Infection : Hedef sistem uzerinde zararli Javascript kodlari calistirilabilir.

# Explanation : Flickr.com sitesi uzerinde bulunan arama motorunda zararli kodlar calistirmaya yarayan bir bugdur.

# Example Exploit : ></TITLE><SCRIPT>alert(SOLVER);</SCRIPT>

[+] Site: www.flickr.com

[+] Demo: http://www.flickr.com/search/?w=all&q=“></TITLE><SCRIPT>alert%28“SOLVER“%29;</SCRIPT>&m=text

# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
#############################################################